Bruce Pugh is a senior level IT executive with over 30 years of expertise in Information Technology. He spent 14 years in the healthcare field, designing, developing and installing automated billing, finance, and accounting systems in hospitals across the country. From there he moved on to ADP where he spent 20 years in various senior level roles leading teams of IT professionals to deliver business solutions through technology and software applications for both ADP clients and their internal field support teams. After leaving ADP, he worked as an independent consultant and IT Expert with t........

This webinar will explain the importance of HIPAA, outlines the requirements related to protecting personal health information (PHI), and specifies best practices for the handling of such information. It focuses on Businesses associates (and their sub-contractors) and their responsibilities under HIPAA as well as the Covered Entity responsibilities to monitor their BAs

Business associates and their subcontractors face potential liability for failing to comply with HIPAA requirements, just as CEs do. They are also one of the focus points of the latest round of audits from OCR (Office of Civil Rights). Further, covered entities may be vicariously liable for their business associates, compliance failures, especially if they cannot show due diligence in monitoring their BAs Therefore, it is imperative that business associates overcome the complex challenges of HIPAA's requirements to ensure compliance and that CEs monitor/audit the compliance of their Business Associates.

Why should you attend this webinar?

With the increased focus of Business Associates in OCR audits the key staff that need to understand the compliance rules would include the security and privacy officers at both the BA and CE. Anyone in a leadership role at the BA in dealings with their covered entity regarding the use and protection of PHI from that CE. Compliance staff from either the BA or CE need to understand the responsibilities of each other under the regulations.

Areas Covered in the Session:

What constitutes a "business associate" and why compliance with the law is required

Quick review of the major components of HIPAA privacy and security rules

Describe business associates responsibilities under HIPAA

Acceptable use of personal health information (PHI)

Responsibility for handling PHI confidentially and securely

Minimizing security breaches and ensuring that PHI is physically secure

Reporting responsibilities of BA to the CE in the event of a breach (suspected or known)

Personal and corporate penalties for non-compliance and intentional violations - will full neglect

Describe the breach notification requirements

Who can Benefit:

Anyone in a leadership role at either the BA or CE who has responsibility for the access to PHI. Titles would include Privacy officer, Security Officer, HIPAA compliance committee member, manager/director/supervisor of any area within the BA/CE organization whose team accesses PHI.